CVE-2020-22761 – Cross Site Request Forgery (CSRF) vulnerability in FlatPress 1.1 via the

Cross Site Request Forgery (CSRF) vulnerability in FlatPress 1.1 via the DeleteFile function in flat/admin.php.

 

Source: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-22761

Reference (s):

• https://github.com/flatpressblog/flatpress/issues/64
• https://www.baomatcoban.info/2020/04/funnymini0day-flatpress-11-cross-site.html